TOPIC: Windows Messaging Service Vulnerability

I just thought I'd give you all a quick heads-up. Recently a vulnerability was found in the windows messaging service (not the same as windows messenger). This service is enabled by default on all versions of windows since I think win98. Microsoft classified the vulnerability as MS0343.

The bad part is that working exploit code is now out in the underground, and it might be possible to use the exploit code in a worm. You don't need to patch anything, you can safely disable this service like this :

If you use messaging, windows or aol, you also have vulnerabilities in the your messages typically get sent in cleartext which is able to be seen by anyone with a sniffer. So need to be careful what you send - like logons or passwords.